From 276de5d6628e0819bb46b725b780e7406809472e Mon Sep 17 00:00:00 2001
From: Colin <colin@uninsane.org>
Date: Thu, 4 Jan 2024 16:12:16 +0000
Subject: [PATCH] tor: fix /var/lib/tor directory permissions

---
 hosts/by-name/servo/services/cryptocurrencies/tor.nix | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/hosts/by-name/servo/services/cryptocurrencies/tor.nix b/hosts/by-name/servo/services/cryptocurrencies/tor.nix
index 927f7b74..9cd42145 100644
--- a/hosts/by-name/servo/services/cryptocurrencies/tor.nix
+++ b/hosts/by-name/servo/services/cryptocurrencies/tor.nix
@@ -19,4 +19,7 @@
   services.tor.settings.DataDirectoryGroupReadable = true;
   # StateDirectoryMode defaults to 0700, and thereby prevents the onion hostnames from being group readable
   systemd.services.tor.serviceConfig.StateDirectoryMode = lib.mkForce "0710";
+  users.users.tor.homeMode = "0710";  # home mode defaults to 0700, causing readability problems, enforced by nixos "users" activation script
+
+  services.tor.settings.SafeLogging = false;  # show actual .onion names in the syslog, else debugging is impossible
 }